radyga-x-main[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

radyga-x-main.zip
Size

24.4MB
MD5

f523696784d01351edb480c4f40adbec
SHA1

766198c3f67baabc2fd966fec2f69a61b5ce53cc
SHA256

9677f7fd869d0d35bd5580ddc03571f444947902a60653a59910b29628390d30
SHA512

60114dca39ef4c75d6e57ba9d949335aa99b6a612374d8b2a90e5a6c1b39b3a28d017a0b7e24efd387aee0ed717e4e7455e68d0250395b040cfa709c7bd896a1
SSDEEP

786432:TDMymxKpG0kNEMDJOIBKVyMXvftG0keWv:ky8rSCKVyM/fW9

Score

7^/10

vmprotect

Malware Config

Signatures

VMProtect packed file 1 IoCs

Detects executables packed with VMProtect commercial packer.

vmprotect

resource	yara_rule
static1/unpack001/radyga-x-main/Radyga/Radyga/bin/Releaseа/Bin/PuppyMilkV3.exe	vmprotect

Unsigned PE 17 IoCs

Checks for missing Authenticode signature.

resource
unpack001/radyga-x-main/Radyga/Radyga/bin/Releaseа/Bin/PuppyMilkV3.exe
unpack001/radyga-x-main/Radyga/Radyga/bin/Releaseа/DLLManager.dll
unpack001/radyga-x-main/Radyga/Radyga/bin/Releaseа/ICSharpCode.AvalonEdit.dll
unpack001/radyga-x-main/Radyga/Radyga/bin/Releaseа/MaterialDesignColors.dll
unpack001/radyga-x-main/Radyga/Radyga/bin/Releaseа/MaterialDesignThemes.Wpf.dll
unpack001/radyga-x-main/Radyga/Radyga/bin/Releaseа/Radyga.exe
unpack001/radyga-x-main/Radyga/Radyga/obj/Debug/Radyga.exe
unpack001/radyga-x-main/Radyga/Radyga/obj/Debug/TempPE/Properties.Resources.Designer.cs.dll
unpack001/radyga-x-main/Radyga/Radyga/obj/Release/Radyga.exe
unpack001/radyga-x-main/Radyga/Radyga/obj/Release/TempPE/Properties.Resources.Designer.cs.dll
unpack001/radyga-x-main/Radyga/packages/AvalonEdit.6.1.1/lib/net40/ICSharpCode.AvalonEdit.dll
unpack001/radyga-x-main/Radyga/packages/AvalonEdit.6.1.1/lib/net45/ICSharpCode.AvalonEdit.dll
unpack001/radyga-x-main/Radyga/packages/AvalonEdit.6.1.1/lib/netcoreapp3.0/ICSharpCode.AvalonEdit.dll
unpack001/radyga-x-main/Radyga/packages/MaterialDesignColors.2.0.0/lib/net452/MaterialDesignColors.dll
unpack001/radyga-x-main/Radyga/packages/MaterialDesignColors.2.0.0/lib/netcoreapp3.1/MaterialDesignColors.dll
unpack001/radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/lib/net452/MaterialDesignThemes.Wpf.dll
unpack001/radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/lib/netcoreapp3.1/MaterialDesignThemes.Wpf.dll

Files

radyga-x-main.zip
.zip

Password: p
radyga-x-main/LICENSE
radyga-x-main/README.md
radyga-x-main/Radyga/.vs/Radyga/v16/.suo
radyga-x-main/Radyga/.vs/Radyga/v17/.suo
radyga-x-main/Radyga/Radyga.sln
radyga-x-main/Radyga/Radyga/App.config
radyga-x-main/Radyga/Radyga/App.xaml
radyga-x-main/Radyga/Radyga/App.xaml.cs
radyga-x-main/Radyga/Radyga/Credits.xaml
radyga-x-main/Radyga/Radyga/Credits.xaml.cs
.js
radyga-x-main/Radyga/Radyga/Functions.cs
radyga-x-main/Radyga/Radyga/Injector.cs
radyga-x-main/Radyga/Radyga/MainWindow.xaml
radyga-x-main/Radyga/Radyga/MainWindow.xaml.cs
.js
radyga-x-main/Radyga/Radyga/Properties/AssemblyInfo.cs
radyga-x-main/Radyga/Radyga/Properties/Resources.Designer.cs
.vbs
radyga-x-main/Radyga/Radyga/Properties/Resources.resx
.vbs
radyga-x-main/Radyga/Radyga/Properties/Settings.Designer.cs
.vbs
radyga-x-main/Radyga/Radyga/Properties/Settings.settings
radyga-x-main/Radyga/Radyga/QUFTeamLogoSmallwhite.png
.png

Password: p
radyga-x-main/Radyga/Radyga/Radyga.csproj
radyga-x-main/Radyga/Radyga/Settings.xaml
radyga-x-main/Radyga/Radyga/Settings.xaml.cs
.js
radyga-x-main/Radyga/Radyga/Start.xaml
radyga-x-main/Radyga/Radyga/Start.xaml.cs
.js
radyga-x-main/Radyga/Radyga/TruncateLongLines.cs
radyga-x-main/Radyga/Radyga/bin/Releaseа/Bin/PuppyMilkV3.exe
.exe windows:6 windows x86 arch:x86

Password: p

be90f46cfdbd17bda42579e0b663ce5a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleScreenBufferInfo
VirtualQuery
LocalAlloc
LocalFree
GetModuleFileNameW
GetProcessAffinityMask
SetProcessAffinityMask
SetThreadAffinityMask
Sleep
ExitProcess
FreeLibrary
LoadLibraryA
GetModuleHandleA
GetProcAddress

user32

GetWindowThreadProcessId
GetProcessWindowStation
GetProcessWindowStation
GetUserObjectInformationW

msvcp140

?_Throw_Cpp_error@std@@YAXH@Z

vcruntime140

__std_exception_copy

api-ms-win-crt-runtime-l1-1-0

_crt_atexit

api-ms-win-crt-stdio-l1-1-0

__p__commode

api-ms-win-crt-heap-l1-1-0

_callnewh

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

wtsapi32

WTSSendMessageW

Exports

Exports

�U�l�N�Q�i77��fWF��d�&5�P�B��¬��=|��Y�F�vY5v�ud҃N��΅l�#i��k;�l�h��~��B��e0U �="VA7Ɲ?�ZˤPHsk��R��vI��-Jx��e�B�=�aˊ��)�s�r�m@#(�9x6W��]�nT%\y]*�e��b�i�5�l�j�"2i�y�X��f�g�#�:��@��"g6v��~��?F�J�>!+C��ε��QJ-��#D=㋘+�Zw��t��\#sx��>��;i��Q��w��4�}f7X[��ˎ3vm��a�{B́� �T�G��kn�s��)s��/��+ȉ2��qHҝV�P`�z=Xy;��6��6"W�A�Ty��ԑ��^�Y��TQe�GW��-�R�9�@��@�?��R��A��ȕ��lcy �j�˭��! ��(`��#�B��%L�?��Q?�g�7��Q��nx}��O��^�#_Ź�޺Q��(��.��a�;��5'K��YB��$�Ǣ{�0�θ�U��~ތ��@l��x5\m��tآO/�Qǽ~��4��=c��\�4��3*��ыL�}��K�)��z��RG!0�q�Fx�x�u�Y��Z�I��_��_-9��Pj��RՉ�~�ڝw蜥!ƣ��!3�O �K<�ws��N�ˋ�^�{�M��8�m3�G�� d�[��`�0?�mP��7U8K<_r�K�O��uF��U��2;b�s`d�?QTzs_A�� B��'q{L� ��l^S�z�{x#7��O�) ��E��\!_�:��M3C��>$,MIF��1M2�*��Z��D ;/��-. �X�b3��iP� ��? cm��w��&�uwi��;p�2�b� {m�˭�� #��6@��r�Q7kT)�z�ų�&�� 8��|&�6�Efys��#@0`��Z��T��qCEd@�b�#��v2�z�g�Ό�^ $��#��l�x.�f3�c��O� �n�k��g�ϒ��?u\�"�J�ƕxՍ�=��<t�M0��/�U�p��Dk��J��%�&�l��C_'�C��|�Yi�R+�� ]I��q�HZR��hөt��%��,N׭�'Z{v��.�㽅�2�c�X��S�ky. H��8�hjz�ȑ�d�њʰ�gN�H6�6��?%�yg�aC��B��a{�Ly�)�,?|�KM!-�׭�%��s�3��y��I�P'%]'KJI�wYFȖ��5�d��\R��oq�߱n��Z�*�z�~�b�P�"��nC��ߟ��%�vocC(��E��, ��S� 1��aJ�Ե�Jb�N?+�?<�T��c��gWN��Z�}�Y�+g|p{�^��~ݦ~_J�b�K"?w�2?�gn�nw��b��E�Ky�`��8��t��g�!��͗|t�5��l6,@�9�~y��lp *�4�En��ʇGҘݢU0*+m�E�ݪ�Pz��k`rBi��`��h�� P%�S%/�6< Q+"�8��B;��;a3��p*N$�u�T�'n{�ʷí�Vd��7�<n[�!��lt��E��ywW�࠙)��e��e��~��m�ÖL��i�#A�۸d薖|�!�` h�g4a�#��[}�j�١�xnj�c�3k�0�}A�h��V��f��u��M^ �W�p��v7�KI�2I<'��?5�u�Ato6/�p� ��yl𐚹t�Y�wV��s��4��V1�@�Gg�'��q�[�S��7f��U�B�<gο��O{�&R~a��@��"S`p K��q�ϟ��g>�|,>F��y��#@��l4<�I� �?��`W��v �%��VC��]�Z4<�2�(�%|��8N[e�� a��&g3��N1B��架l��L��Z�%��Z�Љ��\.�i϶�򥵽9��<�mw�R�p,��9��D1��t��*��VT�T�,��La5^jLV��<��FY�'-rV��+��:Ar�:��iX�O��2�L�.�nqDx��?�^��'H`r��K۵��Άl-�!K\��x��ݘ�S �Ɨ�x�Y��u��dzE�3PrY�� j��pݼO�ʅ.��ںs��$I��y=;�a,B(��u�=��D��ш��ֽY|��42#8��Nи�!d��g��HU�m Ɠ�C>��4�j`�=*7aك"<��W��-�`�T��EDO�0Q��]�2��*%��P�vw��^6��C��}�q��3 ~-�C��;c��M�O��X J��_|�skk<�Q�y�0]��i6��JXl��hs�vP�g:!T4Z�q��4��R>��=��T�~x�i�9/=+�|B�б��9w/5r!LvK�N�7��/��i~Gw!�!�3�;]��>�W|A�t�zЬ��^$�f�~.A�N7��z_U]��k��*��F�'��x�ך_��_XXF`+n��N'�ؚ<��Ӿ�oK��5��?��Y82�mi�큟:9l0Qfϝɮ��eq4Ǔz1�k��-�rl%>5!��~ ��H粮��i�ԤE�m1�Z��>A�%�O�䈳��խ��z��w��tQ7\=�z"�C�e�A�1�OI��U吲�]��W�$۟�2Ԑ��D�&��T�k��fo�m��媜wȎ7JA��r�vK��b��8�I��c-zzI��,��_��t-[̣� ��L�Zy�Tx��Ntfe)��0U�E�"��U��?色'�@!Ѡ;��#u�;p�l܄�[�@F�[X�|B��bޡ|_��Azj��=�Lkr,V��d��B~�~T��x�\�W�@5�U��r�ιvl�2O�Cy��Q��нV߽'YN�%��X�� ᏾ ��>_�M�>�Io'��`A�

Sections

.text
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp0
Size: - Virtual size: 3.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vmp1
Size: 5.4MB - Virtual size: 5.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 469B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
radyga-x-main/Radyga/Radyga/bin/Releaseа/Bin/lua.xshd
.xml
radyga-x-main/Radyga/Radyga/bin/Releaseа/DLLManager.dll
.dll windows:4 windows x86 arch:x86

Password: p

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
radyga-x-main/Radyga/Radyga/bin/Releaseа/ICSharpCode.AvalonEdit.dll
.dll windows:4 windows x86 arch:x86

Password: p

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\AvalonEdit\AvalonEdit\ICSharpCode.AvalonEdit\obj\Release\net45\ICSharpCode.AvalonEdit.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 601KB - Virtual size: 601KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
radyga-x-main/Radyga/Radyga/bin/Releaseа/MaterialDesignColors.dll
.dll windows:4 windows x86 arch:x86

Password: p

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\1\s\MaterialDesignColors.Wpf\obj\Release\net452\MaterialDesignColors.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 292KB - Virtual size: 292KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
radyga-x-main/Radyga/Radyga/bin/Releaseа/MaterialDesignThemes.Wpf.dll
.dll windows:4 windows x86 arch:x86

Password: p

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\1\s\MaterialDesignThemes.Wpf\obj\Release\net452\MaterialDesignThemes.Wpf.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 7.8MB - Virtual size: 7.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
radyga-x-main/Radyga/Radyga/bin/Releaseа/Radyga.exe
.exe windows:4 windows x86 arch:x86

Password: p

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 154KB - Virtual size: 154KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
radyga-x-main/Radyga/Radyga/bin/Releaseа/Radyga.exe.config
radyga-x-main/Radyga/Radyga/bin/Releaseа/Scripts/example.txt
radyga-x-main/Radyga/Radyga/logo.png
.png

Password: p
radyga-x-main/Radyga/Radyga/mall.ico
radyga-x-main/Radyga/Radyga/obj/Debug/.NETFramework,Version=v4.7.2.AssemblyAttributes.cs
radyga-x-main/Radyga/Radyga/obj/Debug/App.baml
radyga-x-main/Radyga/Radyga/obj/Debug/App.g.cs
radyga-x-main/Radyga/Radyga/obj/Debug/App.g.i.cs
radyga-x-main/Radyga/Radyga/obj/Debug/Credits - Копировать.g.i.cs
radyga-x-main/Radyga/Radyga/obj/Debug/Credits.baml
radyga-x-main/Radyga/Radyga/obj/Debug/Credits.g.cs
radyga-x-main/Radyga/Radyga/obj/Debug/Credits.g.i.cs
radyga-x-main/Radyga/Radyga/obj/Debug/CreditsWindow.g.i.cs
radyga-x-main/Radyga/Radyga/obj/Debug/DesignTimeResolveAssemblyReferences.cache
radyga-x-main/Radyga/Radyga/obj/Debug/DesignTimeResolveAssemblyReferencesInput.cache
radyga-x-main/Radyga/Radyga/obj/Debug/MainWindow.baml
radyga-x-main/Radyga/Radyga/obj/Debug/MainWindow.g.cs
radyga-x-main/Radyga/Radyga/obj/Debug/MainWindow.g.i.cs
radyga-x-main/Radyga/Radyga/obj/Debug/Radyga.Properties.Resources.resources
radyga-x-main/Radyga/Radyga/obj/Debug/Radyga.csproj.AssemblyReference.cache
radyga-x-main/Radyga/Radyga/obj/Debug/Radyga.csproj.CoreCompileInputs.cache
radyga-x-main/Radyga/Radyga/obj/Debug/Radyga.csproj.FileListAbsolute.txt
radyga-x-main/Radyga/Radyga/obj/Debug/Radyga.csproj.GenerateResource.cache
radyga-x-main/Radyga/Radyga/obj/Debug/Radyga.csprojAssemblyReference.cache
radyga-x-main/Radyga/Radyga/obj/Debug/Radyga.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Qufit\Desktop\Radyga\Radyga\obj\Debug\Radyga.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 162KB - Virtual size: 161KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
radyga-x-main/Radyga/Radyga/obj/Debug/Radyga.g.resources
radyga-x-main/Radyga/Radyga/obj/Debug/Radyga.pdb
radyga-x-main/Radyga/Radyga/obj/Debug/Radyga_Content.g.i.cs
radyga-x-main/Radyga/Radyga/obj/Debug/Radyga_MarkupCompile.cache
radyga-x-main/Radyga/Radyga/obj/Debug/Radyga_MarkupCompile.i.cache
radyga-x-main/Radyga/Radyga/obj/Debug/Radyga_MarkupCompile.i.lref
radyga-x-main/Radyga/Radyga/obj/Debug/Radyga_MarkupCompile.lref
radyga-x-main/Radyga/Radyga/obj/Debug/Settings.baml
radyga-x-main/Radyga/Radyga/obj/Debug/Settings.g.cs
radyga-x-main/Radyga/Radyga/obj/Debug/Settings.g.i.cs
radyga-x-main/Radyga/Radyga/obj/Debug/Start.baml
radyga-x-main/Radyga/Radyga/obj/Debug/Start.g.cs
radyga-x-main/Radyga/Radyga/obj/Debug/Start.g.i.cs
radyga-x-main/Radyga/Radyga/obj/Debug/TempPE/Properties.Resources.Designer.cs.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
radyga-x-main/Radyga/Radyga/obj/Release/.NETFramework,Version=v4.7.2.AssemblyAttributes.cs
radyga-x-main/Radyga/Radyga/obj/Release/App.baml
radyga-x-main/Radyga/Radyga/obj/Release/App.g.cs
radyga-x-main/Radyga/Radyga/obj/Release/App.g.i.cs
radyga-x-main/Radyga/Radyga/obj/Release/Credits.baml
radyga-x-main/Radyga/Radyga/obj/Release/Credits.g.cs
radyga-x-main/Radyga/Radyga/obj/Release/Credits.g.i.cs
radyga-x-main/Radyga/Radyga/obj/Release/DesignTimeResolveAssemblyReferences.cache
radyga-x-main/Radyga/Radyga/obj/Release/DesignTimeResolveAssemblyReferencesInput.cache
radyga-x-main/Radyga/Radyga/obj/Release/MainWindow.baml
radyga-x-main/Radyga/Radyga/obj/Release/MainWindow.g.cs
radyga-x-main/Radyga/Radyga/obj/Release/MainWindow.g.i.cs
radyga-x-main/Radyga/Radyga/obj/Release/Radyga.Properties.Resources.resources
radyga-x-main/Radyga/Radyga/obj/Release/Radyga.csproj.AssemblyReference.cache
radyga-x-main/Radyga/Radyga/obj/Release/Radyga.csproj.CoreCompileInputs.cache
radyga-x-main/Radyga/Radyga/obj/Release/Radyga.csproj.FileListAbsolute.txt
radyga-x-main/Radyga/Radyga/obj/Release/Radyga.csproj.GenerateResource.cache
radyga-x-main/Radyga/Radyga/obj/Release/Radyga.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 154KB - Virtual size: 154KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
radyga-x-main/Radyga/Radyga/obj/Release/Radyga.g.resources
radyga-x-main/Radyga/Radyga/obj/Release/Radyga_Content.g.i.cs
radyga-x-main/Radyga/Radyga/obj/Release/Radyga_MarkupCompile.cache
radyga-x-main/Radyga/Radyga/obj/Release/Radyga_MarkupCompile.i.cache
radyga-x-main/Radyga/Radyga/obj/Release/Radyga_MarkupCompile.i.lref
radyga-x-main/Radyga/Radyga/obj/Release/Radyga_MarkupCompile.lref
radyga-x-main/Radyga/Radyga/obj/Release/Settings.baml
radyga-x-main/Radyga/Radyga/obj/Release/Settings.g.cs
radyga-x-main/Radyga/Radyga/obj/Release/Settings.g.i.cs
radyga-x-main/Radyga/Radyga/obj/Release/Start.baml
radyga-x-main/Radyga/Radyga/obj/Release/Start.g.cs
radyga-x-main/Radyga/Radyga/obj/Release/Start.g.i.cs
radyga-x-main/Radyga/Radyga/obj/Release/TempPE/Properties.Resources.Designer.cs.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
radyga-x-main/Radyga/Radyga/packages.config
radyga-x-main/Radyga/Radyga/raduga_logo.png
.png
radyga-x-main/Radyga/Radyga/radygaFixed.png
.png
radyga-x-main/Radyga/Radyga/round_auto_fix_high_white_24dp.png
.png
radyga-x-main/Radyga/Radyga/round_close_white_24dp.png
.png
radyga-x-main/Radyga/Radyga/round_minimize_white_24dp.png
.png
radyga-x-main/Radyga/Radyga/round_people_alt_white_24dp.png
.png
radyga-x-main/Radyga/Radyga/round_settings_white_24dp.png
.png
radyga-x-main/Radyga/packages/AvalonEdit.6.1.1/.signature.p7s
radyga-x-main/Radyga/packages/AvalonEdit.6.1.1/AvalonEdit.6.1.1.nupkg
.nupkg
radyga-x-main/Radyga/packages/AvalonEdit.6.1.1/images/AvalonEditNuGetPackageIcon.png
.png
radyga-x-main/Radyga/packages/AvalonEdit.6.1.1/lib/net40/ICSharpCode.AvalonEdit.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\AvalonEdit\AvalonEdit\ICSharpCode.AvalonEdit\obj\Release\net40\ICSharpCode.AvalonEdit.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 599KB - Virtual size: 599KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
radyga-x-main/Radyga/packages/AvalonEdit.6.1.1/lib/net40/ICSharpCode.AvalonEdit.xml
.xml
radyga-x-main/Radyga/packages/AvalonEdit.6.1.1/lib/net45/ICSharpCode.AvalonEdit.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\AvalonEdit\AvalonEdit\ICSharpCode.AvalonEdit\obj\Release\net45\ICSharpCode.AvalonEdit.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 601KB - Virtual size: 601KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
radyga-x-main/Radyga/packages/AvalonEdit.6.1.1/lib/net45/ICSharpCode.AvalonEdit.xml
.xml
radyga-x-main/Radyga/packages/AvalonEdit.6.1.1/lib/netcoreapp3.0/ICSharpCode.AvalonEdit.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\AvalonEdit\AvalonEdit\ICSharpCode.AvalonEdit\obj\Release\netcoreapp3.0\ICSharpCode.AvalonEdit.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 602KB - Virtual size: 601KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
radyga-x-main/Radyga/packages/AvalonEdit.6.1.1/lib/netcoreapp3.0/ICSharpCode.AvalonEdit.xml
.xml
radyga-x-main/Radyga/packages/MaterialDesignColors.2.0.0/.signature.p7s
radyga-x-main/Radyga/packages/MaterialDesignColors.2.0.0/MaterialDesignColors.2.0.0.nupkg
.nupkg
radyga-x-main/Radyga/packages/MaterialDesignColors.2.0.0/images/MaterialDesignColors.Icon.png
.png
radyga-x-main/Radyga/packages/MaterialDesignColors.2.0.0/lib/net452/MaterialDesignColors.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\1\s\MaterialDesignColors.Wpf\obj\Release\net452\MaterialDesignColors.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 292KB - Virtual size: 292KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
radyga-x-main/Radyga/packages/MaterialDesignColors.2.0.0/lib/net452/MaterialDesignColors.pdb
radyga-x-main/Radyga/packages/MaterialDesignColors.2.0.0/lib/netcoreapp3.1/MaterialDesignColors.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\1\s\MaterialDesignColors.Wpf\obj\Release\netcoreapp3.1\MaterialDesignColors.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 293KB - Virtual size: 292KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
radyga-x-main/Radyga/packages/MaterialDesignColors.2.0.0/lib/netcoreapp3.1/MaterialDesignColors.pdb
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/.signature.p7s
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/MaterialDesignThemes.4.0.0.nupkg
.nupkg
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/build/MaterialDesignThemes.targets
.xml
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/build/Resources/Roboto/Roboto-Black.ttf
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/build/Resources/Roboto/Roboto-BlackItalic.ttf
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/build/Resources/Roboto/Roboto-Bold.ttf
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/build/Resources/Roboto/Roboto-BoldItalic.ttf
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/build/Resources/Roboto/Roboto-Italic.ttf
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/build/Resources/Roboto/Roboto-Light.ttf
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/build/Resources/Roboto/Roboto-LightItalic.ttf
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/build/Resources/Roboto/Roboto-Medium.ttf
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/build/Resources/Roboto/Roboto-MediumItalic.ttf
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/build/Resources/Roboto/Roboto-Regular.ttf
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/build/Resources/Roboto/Roboto-Thin.ttf
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/build/Resources/Roboto/Roboto-ThinItalic.ttf
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/build/Resources/Roboto/RobotoCondensed-Bold.ttf
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/build/Resources/Roboto/RobotoCondensed-BoldItalic.ttf
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/build/Resources/Roboto/RobotoCondensed-Italic.ttf
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/build/Resources/Roboto/RobotoCondensed-Light.ttf
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/build/Resources/Roboto/RobotoCondensed-LightItalic.ttf
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/build/Resources/Roboto/RobotoCondensed-Regular.ttf
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/images/MaterialDesignThemes.Icon.png
.png
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/lib/net452/MaterialDesignThemes.Wpf.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\1\s\MaterialDesignThemes.Wpf\obj\Release\net452\MaterialDesignThemes.Wpf.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 7.8MB - Virtual size: 7.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/lib/net452/MaterialDesignThemes.Wpf.pdb
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/lib/net452/MaterialDesignThemes.Wpf.xml
.xml
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/lib/netcoreapp3.1/MaterialDesignThemes.Wpf.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\1\s\MaterialDesignThemes.Wpf\obj\Release\netcoreapp3.1\MaterialDesignThemes.Wpf.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 7.8MB - Virtual size: 7.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/lib/netcoreapp3.1/MaterialDesignThemes.Wpf.pdb
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/lib/netcoreapp3.1/MaterialDesignThemes.Wpf.xml
.xml
radyga-x-main/Radyga/packages/MaterialDesignThemes.4.0.0/tools/VisualStudioToolsManifest.xml

Sharing

General

Malware Config

Signatures

Files

Password: p

Password: p

Password: p

be90f46cfdbd17bda42579e0b663ce5a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

msvcp140

vcruntime140

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-locale-l1-1-0

wtsapi32

Exports

Exports

Sections

.text Size: - Virtual size: 12KB

.rdata Size: - Virtual size: 7KB

.data Size: - Virtual size: 1KB

.vmp0 Size: - Virtual size: 3.4MB

.vmp1 Size: 5.4MB - Virtual size: 5.4MB

.rsrc Size: 512B - Virtual size: 469B

Password: p

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 20KB - Virtual size: 19KB

.rsrc Size: 1024B - Virtual size: 928B

.reloc Size: 512B - Virtual size: 12B

Password: p

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 601KB - Virtual size: 601KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

Password: p

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 292KB - Virtual size: 292KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

Password: p

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 7.8MB - Virtual size: 7.8MB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

Password: p

.text
Size: - Virtual size: 12KB

.rdata
Size: - Virtual size: 7KB

.data
Size: - Virtual size: 1KB

.vmp0
Size: - Virtual size: 3.4MB

.vmp1
Size: 5.4MB - Virtual size: 5.4MB

.rsrc
Size: 512B - Virtual size: 469B

.text
Size: 20KB - Virtual size: 19KB

.rsrc
Size: 1024B - Virtual size: 928B

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 601KB - Virtual size: 601KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 292KB - Virtual size: 292KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 7.8MB - Virtual size: 7.8MB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 154KB - Virtual size: 154KB

.rsrc
Size: 12KB - Virtual size: 11KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 162KB - Virtual size: 161KB

.rsrc
Size: 12KB - Virtual size: 11KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 3KB - Virtual size: 2KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 154KB - Virtual size: 154KB

.rsrc
Size: 12KB - Virtual size: 11KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 4KB - Virtual size: 3KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 599KB - Virtual size: 599KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 601KB - Virtual size: 601KB